This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft File: kCs-s81I0JqgoQybLLKA0KDNLbo.mft (raw, json) Hash identifier: fxTcranpq03NjNDahcGDOOHrIXu2lyfbReREIINAxbM= Subject key identifier: EC:0E:AC:92:3D:AC:84:F9:30:E9:C2:CF:B2:C4:6E:FE:2F:17:54:C1 Authority key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA Certificate issuer: /CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Certificate serial: 1053 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft Manifest number: 1053 Signing time: Mon 22 Dec 2025 17:04:28 +0000 Manifest this update: Mon 22 Dec 2025 17:04:28 +0000 Manifest next update: Mon 29 Dec 2025 17:04:28 +0000 Files and hashes: 1: kCs-s81I0JqgoQybLLKA0KDNLbo.crl (hash: zPMNYgN8i5pVrvOVukfRCFVWbs9OVKt1FAEUKBvWYl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4179 (0x1053) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A161, serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Validity Not Before: Dec 22 17:04:28 2025 GMT Not After : Dec 29 17:04:28 2025 GMT Subject: CN=69497a1c-de18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:83:6a:bb:56:8a:71:8f:b5:30:01:96:c8:d7: 15:60:8a:43:02:2f:a7:ea:b2:46:df:87:b3:53:26: a7:76:21:2b:5d:45:f7:b4:5c:66:6c:87:4e:a9:20: 7d:2f:95:05:c0:36:fd:78:3c:9d:1d:0e:3d:a6:72: 8b:69:a4:3d:37:a3:dc:e1:b2:5d:b2:53:62:d4:d0: 33:7d:79:a5:2b:ba:c4:2d:e1:e2:78:a4:19:55:2a: 90:02:9f:57:82:eb:55:7d:5d:04:16:2f:35:2d:2e: e0:f3:82:48:df:1f:43:dd:ce:f3:7c:e5:ee:8c:89: 8e:db:d3:a5:c8:8f:1d:fd:36:22:dd:cb:b0:82:60: 8f:f8:9c:8f:50:b2:8b:be:ff:34:5a:16:b5:98:91: be:4a:4f:32:c1:18:a0:02:52:af:df:80:c9:0e:e5: f5:fc:89:73:26:61:ac:86:f2:9d:e1:89:f6:e2:7d: c8:01:73:db:f9:7e:dd:9c:98:7a:bf:30:25:12:25: 7e:62:a2:0e:61:dd:47:c5:bb:73:47:5f:a3:b8:63: 0f:5e:ff:4d:22:da:2b:a4:8d:0a:f2:7d:1a:33:7c: a4:b0:78:3d:49:bf:58:c3:9b:de:63:d0:ae:2b:4a: 52:0e:4d:fa:f6:7c:61:28:14:b2:6c:87:b5:ed:dd: c1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0E:AC:92:3D:AC:84:F9:30:E9:C2:CF:B2:C4:6E:FE:2F:17:54:C1 X509v3 Authority Key Identifier: keyid:90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:c6:90:d4:11:dc:67:77:cb:70:35:5a:a3:f9:a0:3f:41:92: e8:dc:5b:cf:32:31:bf:8b:63:04:3e:7b:60:af:c7:ef:39:91: fc:a5:2c:b5:d2:50:bf:aa:56:07:63:6b:4e:fa:ea:b4:dc:73: 11:7e:e8:49:d4:77:9a:7e:bb:de:e2:f7:fd:43:7e:e3:a4:0d: 0e:2c:fc:00:22:c1:d2:eb:7d:28:b3:27:1c:27:26:e1:de:37: 68:8a:b6:a4:26:d9:ec:35:6d:c2:b8:83:46:b8:61:c9:65:20: ed:b4:49:55:ba:1d:b3:aa:fc:38:cf:b3:fa:d4:bf:d5:a5:58: d4:36:fd:0d:36:e6:af:bf:d5:77:ac:b7:ab:de:1a:ce:a0:39: f3:3a:8e:85:c5:9b:7c:b1:7e:af:ae:43:fc:76:d5:eb:57:e2: 0e:41:80:cd:d9:16:81:95:88:2b:97:97:45:e7:c3:ac:db:65: 03:28:c6:d7:fd:07:57:ac:d8:e0:d0:bf:71:75:bb:c7:ff:f4: d1:49:fd:ca:6c:06:b3:c1:88:83:85:7e:40:b5:71:1a:91:ef: 56:e7:c8:1a:17:05:7d:fd:2c:18:ea:4c:51:2a:ab:c8:41:a8: ae:7c:d2:15:05:2a:50:7a:8c:50:4f:84:e9:24:1c:36:f1:32: 6d:85:ed:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUExNjExMTAvBgNVBAUTKDkwMkIzRUIzQ0Q0OEQwOUFBMEExMEM5QjJDQjI4MEQw QTBDRDJEQkEwHhcNMjUxMjIyMTcwNDI4WhcNMjUxMjI5MTcwNDI4WjAYMRYwFAYD VQQDDA02OTQ5N2ExYy1kZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApINqu1aKcY+1MAGWyNcVYIpDAi+n6rJG34ezUyandiErXUX3tFxmbIdOqSB9 L5UFwDb9eDydHQ49pnKLaaQ9N6Pc4bJdslNi1NAzfXmlK7rELeHieKQZVSqQAp9X gutVfV0EFi81LS7g84JI3x9D3c7zfOXujImO29OlyI8d/TYi3cuwgmCP+JyPULKL vv80Wha1mJG+Sk8ywRigAlKv34DJDuX1/IlzJmGshvKd4Yn24n3IAXPb+X7dnJh6 vzAlEiV+YqIOYd1HxbtzR1+juGMPXv9NItorpI0K8n0aM3yksHg9Sb9Yw5veY9Cu K0pSDk369nxhKBSybIe17d3BIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwOrJI9 rIT5MOnCz7LEbv4vF1TBMB8GA1UdIwQYMBaAFJArPrPNSNCaoKEMmyyygNCgzS26 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTE2MS9CMDdCMkFCODRC MTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBKcWdvUXliTExLQTBLRE5M Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tDcy1zODFJMEpxZ29ReWJMTEtBMEtETkxiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTE2MS9CMDdCMkFCODRCMTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBK cWdvUXliTExLQTBLRE5MYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzxpDUEdxnd8twNVqj+aA/QZLo3FvPMjG/i2MEPntgr8fvOZH8pSy1 0lC/qlYHY2tO+uq03HMRfuhJ1Heafrve4vf9Q37jpA0OLPwAIsHS630osyccJybh 3jdoirakJtnsNW3CuINGuGHJZSDttElVuh2zqvw4z7P61L/VpVjUNv0NNuavv9V3 rLer3hrOoDnzOo6FxZt8sX6vrkP8dtXrV+IOQYDN2RaBlYgrl5dF58Os22UDKMbX /QdXrNjg0L9xdbvH//TRSf3KbAazwYiDhX5AtXEake9W58gaFwV9/SwY6kxRKqvI QaiufNIVBSpQeoxQT4TpJBw28TJthe0a -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:29 2025 by rpki-client